1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
| # verify that the service is running and reachable
firewall-cmd --state
# list of available services
firewall-cmd --get-services
# print out the default zone’s configuration
firewall-cmd --list-all
# output all of the zone definitions
firewall-cmd --list-all-zones
# add/remove that to the current session and the permanent rule-set
firewall-cmd --zone=public --permanent --add-service=https
firewall-cmd --zone=public --permanent --remove-service=https
firewall-cmd --zone=public --permanent --add-port=1521/tcp
firewall-cmd --zone=public --permanent --remove-port=1521/tcp
firewall-cmd --zone=public --permanent --add-port=4990-4999/udp
firewall-cmd --zone=public --permanent --add-source=182.168.8.10/24
firewall-cmd --zone=public --permanent --add-rich-rule='rule family="ipv4" source address="10.24.96.5/20" port protocol="tcp" port="3306" accept'
firewall-cmd --zone=public --permanent --list-ports
#
firewall-cmd --reload
|